Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Simple 301 Redirects by BetterLinks - 2.0.0-2.0.3 - Arbitrary Plugin Installation
Vulnerability Description
A lack of capability checks and insufficient nonce check on the AJAX action in the Simple 301 Redirects by BetterLinks WordPress plugin before 2.0.4, made it possible for authenticated users to install arbitrary plugins on vulnerable sites.
CVSS Information
N/A
Vulnerability Type
授权机制缺失
Vulnerability Title
BetterLinks WordPress plugin 安全漏洞
Vulnerability Description
WordPress是WordPress(Wordpress)基金会的一套使用PHP语言开发的博客平台。该平台支持在PHP和MySQL的服务器上架设个人博客网站。 BetterLinks WordPress plugin 2.0.4之前版本存在安全漏洞,该漏洞源于缺乏功能检查AJAX动作,攻击者可利用该漏洞安装任意插件。
CVSS Information
N/A
Vulnerability Type
N/A